Security & Trust

PMPath’s web checkout uses PayTR Virtual POS: payments run on PayTR’s hosted flow with encryption (for example 256-bit SSL) and PCI-DSS aligned practices on the processor side. Card data is not stored on PMPath servers; it is handled by the payment institution.

PMPath provides digital services. Once checkout is live, 90-day digital access is assigned automatically after a successful payment, and no physical product shipment is provided.

PMPath uses reputable payment service providers to capture card payments through hosted checkout pages. Sensitive card data is processed according to industry-standard practices by those providers; PMPath does not store full card numbers for PCI DSS scope minimization.

Always verify that you are on our official domain before entering credentials or payment details.

Use a strong, unique password where password login is enabled; enable provider-backed login protections offered by Google or Apple when you choose those methods.

If you suspect unauthorized access, change credentials and contact support promptly.

Personal data handling is described in our Privacy Policy. Authentication and infrastructure may rely on subprocessors such as Firebase/Google Cloud as outlined there.

Review the Privacy Policy for categories of data, purposes, retention, and rights requests.

No online service can guarantee absolute security. Keep devices updated, avoid sharing OTPs or magic links, and report phishing attempts impersonating PMPath to support.

We may apply fraud-prevention checks where reasonably necessary to protect users and payment integrity.